[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fu_i2BtxpYnpVUO-ClXLeZ41mfKgf0WOdHM53gAhT548":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30,"vulnerabilities":31,"developer":32,"crawl_stats":29,"alternatives":38,"analysis":131,"fingerprints":326},"va-simple-enhanced-security","VA Simple Enhanced Security","0.4.6","kuck1u","https:\u002F\u002Fprofiles.wordpress.org\u002Fkuck1u\u002F","\u003Cp>This plugin will enhance the security of your WordPress.\u003Cbr \u002F>\nThis plugin the very simple.\u003C\u002Fp>\n\u003Ch4>Can do this plugin\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Can protect the management screen and login screen in Basic authentication or Digest authentication.\u003C\u002Fli>\n\u003Cli>Change the author base.\u003C\u002Fli>\n\u003Cli>Change to email login from username login.\u003C\u002Fli>\n\u003Cli>Author information is deleted by body_class().\u003C\u002Fli>\n\u003Cli>etc.\u003C\u002Fli>\n\u003C\u002Ful>\n","This plugin will enhance the security of your WordPress.",10,1883,100,2,"2016-04-05T14:50:00.000Z","4.4.34","4.4","",[20,21,22,23,24],"auth","basic-auth","basicauth","digest-auth","digestauth","https:\u002F\u002Fgithub.com\u002FVisuAlive\u002Fva-simple-enhanced-security","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fva-simple-enhanced-security.zip",85,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":33,"total_installs":34,"avg_security_score":27,"avg_patch_time_days":35,"trust_score":36,"computed_at":37},7,2300,30,84,"2026-04-04T13:44:18.986Z",[39,56,73,93,111],{"slug":40,"name":41,"version":42,"author":7,"author_profile":8,"description":43,"short_description":44,"active_installs":45,"downloaded":46,"rating":13,"num_ratings":47,"last_updated":48,"tested_up_to":49,"requires_at_least":50,"requires_php":18,"tags":51,"homepage":54,"download_link":55,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"va-simple-basic-auth","VA Simple Basic Auth","1.1.0","\u003Cp>This plugin the very simple.\u003Cbr \u002F>\nSimply by enabling the plugin can set up a basic auth to dashboard and login page.\u003Cbr \u002F>\nAuth information of Basic Auth is your WordPress user name and password.\u003C\u002Fp>\n\u003Ch4>Requires\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>WordPress 4.3 or higher\u003C\u002Fli>\n\u003Cli>PHP 5.4 or higher\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Contribute!\u003C\u002Fh4>\n\u003Cp>You can fork the plugin from \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fvisualive\u002Fva-simple-basic-auth\" rel=\"nofollow ugc\">GitHub\u003C\u002Fa>\u003C\u002Fp>\n","Simply by enabling the plugin can set up a basic auth to dashboard and login page.",70,9328,1,"2016-09-25T07:53:00.000Z","4.6.30","4.3",[20,21,22,52,53],"security","wp-admin","https:\u002F\u002Fgithub.com\u002FVisuAlive\u002Fva-simple-basic-auth","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fva-simple-basic-auth.zip",{"slug":57,"name":58,"version":59,"author":60,"author_profile":61,"description":62,"short_description":63,"active_installs":64,"downloaded":65,"rating":66,"num_ratings":33,"last_updated":67,"tested_up_to":68,"requires_at_least":69,"requires_php":18,"tags":70,"homepage":71,"download_link":72,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"wp-basic-auth","WP BASIC Auth","1.1.4","wokamoto","https:\u002F\u002Fprofiles.wordpress.org\u002Fwokamoto\u002F","\u003Cp>Enabling this plugin allows you to set up Basic authentication on your site using your WordPress’s user name and password.\u003Cbr \u002F>\nIt is very useful for setting up Basic authentication temporarily to your development WordPress site and so on.\u003C\u002Fp>\n\u003Cp>This plugin banner image was created by \u003Ca href=\"http:\u002F\u002Farcted.jp\u002F\" title=\"Arcted - Web Developer Portfolio\" rel=\"nofollow ugc\">Arcted\u003C\u002Fa>. Thank you, Arcted!\u003C\u002Fp>\n","Enabling this plugin allows you to set up Basic authentication on your site using your WordPress's user name and password.",4000,123185,72,"2022-11-22T02:08:00.000Z","6.1.10","3.0",[20,21],"https:\u002F\u002Fgithub.com\u002Fwokamoto\u002Fwp-basic-auth","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-basic-auth.1.1.4.zip",{"slug":74,"name":75,"version":76,"author":77,"author_profile":78,"description":79,"short_description":80,"active_installs":81,"downloaded":82,"rating":13,"num_ratings":83,"last_updated":84,"tested_up_to":85,"requires_at_least":86,"requires_php":87,"tags":88,"homepage":91,"download_link":92,"security_score":13,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"wp-basic-authentication","WP Basic Authentication","1.1.1","nutttaro","https:\u002F\u002Fprofiles.wordpress.org\u002Fnutttaro\u002F","\u003Cp>WP Basic Authentication is a plugin for protected your development WordPress site like .htpasswd and support Docker and Kubernetes (K8s)\u003C\u002Fp>\n\u003Cp>Features:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Easy for setting Basic Authentication\u003C\u002Fli>\n\u003Cli>Basic Authentication works like .htpasswd\u003C\u002Fli>\n\u003Cli>Protected development website or demo website without .htpasswd\u003C\u002Fli>\n\u003Cli>Support Docker and Kubernetes (K8s)\u003C\u002Fli>\n\u003Cli>The plugin is lightweight.\u003C\u002Fli>\n\u003C\u002Ful>\n","Basic Authentication for protected your development WordPress site like .htpasswd",2000,40566,5,"2026-02-19T10:05:00.000Z","6.9.4","5.7","7.4",[89,21,90],"authentication","protected","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwp-basic-authentication\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-basic-authentication.1.1.1.zip",{"slug":94,"name":95,"version":42,"author":96,"author_profile":97,"description":98,"short_description":99,"active_installs":100,"downloaded":101,"rating":102,"num_ratings":47,"last_updated":103,"tested_up_to":104,"requires_at_least":105,"requires_php":106,"tags":107,"homepage":109,"download_link":110,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"http-basic-auth","HTTP Basic Auth","Grzegorz Rola","https:\u002F\u002Fprofiles.wordpress.org\u002Fgrola\u002F","\u003Cp>With this plugin you can protect your WordPress installation with Basic Auth. Basic Auth can use custom password or WordPress users login data.\u003C\u002Fp>\n\u003Cp>This plugin protects all dynamically generated content: posts, pages, archives, etc. Basic auth does not protect static content like images, scripts and CSS files.\u003C\u002Fp>\n\u003Cp>You can protect: admin area (wp-admin), login page and frontend area.\u003C\u002Fp>\n","Basic Auth for Wordpress.",200,9749,20,"2022-02-27T13:30:00.000Z","5.9.13","4.5","7.0",[20,21,108,94,52],"http-auth","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fhttp-basic-auth","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fhttp-basic-auth.1.1.0.zip",{"slug":112,"name":113,"version":114,"author":115,"author_profile":116,"description":117,"short_description":118,"active_installs":119,"downloaded":120,"rating":13,"num_ratings":47,"last_updated":18,"tested_up_to":85,"requires_at_least":121,"requires_php":122,"tags":123,"homepage":128,"download_link":129,"security_score":13,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":130},"wp-simple-rest-api-authentication","Simple REST API Authenticaton with WooCommerce Credentials","1.0.8","oneteamsoftware","https:\u002F\u002Fprofiles.wordpress.org\u002Foneteamsoftware\u002F","\u003Cp>Introducing our \u003Cstrong>Simple REST API Authentication\u003C\u002Fstrong> plugin for WordPress – the ultimate solution for seamless integration between your website and external applications.\u003C\u002Fp>\n\u003Cp>This plugin lets you use Basic Authentication for WordPress REST API and other custom-developed endpoints as well as third-party plugin REST API endpoints with \u003Cstrong>WooCommerce REST API credentials\u003C\u002Fstrong>.\u003C\u002Fp>\n\u003Cp>With Simple REST API Authentication plugin, you won’t have to use different credentials or expose your user name and password to upload media to WordPress and then use it for WooCommerce products.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Seamless integration with WooCommerce REST API credentials for WordPress REST API\u003C\u002Fli>\n\u003Cli>Debugging capabilities for troubleshooting\u003C\u002Fli>\n\u003Cli>Flexibility to enable or disable the SSL requirement for added security.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>The WordPress REST API is a powerful tool that makes CRUD (Create, Read, Update & Delete) operations available from anywhere, instead of being limited to the admin dashboard.\u003C\u002Fp>\n\u003Cp>It provides a lightweight form of communication between the client and the server, making it a great solution for exchanging data.\u003C\u002Fp>\n\u003Cp>This plugin can be used to create iOS\u002FAndroid, etc native apps, and we can use any language we want as long as the language can make HTTP requests and interpret JSON such as Node.js, Express.js, Ruby, Python etc.\u003C\u002Fp>\n\u003Cp>The possibilities are endless with this plugin, and it can be used in hundreds of various scenarios to make your website more accessible, efficient and user-friendly.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Upgrade your website to the next level with our Simple REST API Authentication plugin today!\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>These are only a few examples of possible use cases and they are only limited by your imagination and requirement.\u003Cbr \u002F>\nIn case it is not enough, then feel free to \u003Ca href=\"https:\u002F\u002F1teamsoftware.com\u002Fcontact-us\u002F\" rel=\"nofollow ugc\">Contact Us\u003C\u002Fa> and we will find a way to meet your requirements.\u003C\u002Fp>\n\u003Ch3>PREMIUM PLUGINS\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002F1teamsoftware.com\u002Fproduct\u002Fwoocommerce-free-shipping-per-package-pro\u002F\" rel=\"nofollow ugc\">Free Shipping Per Package PRO\u003C\u002Fa> – Free Shipping based on advanced conditions.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002F1teamsoftware.com\u002Fproduct\u002Fwoocommerce-chitchats-shipping\u002F\" rel=\"nofollow ugc\">ChitChats Shipping\u003C\u002Fa> – Ship your packages from Canada via USA as if you were physically there.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002F1teamsoftware.com\u002Fproduct\u002Fwoocommerce-marketplace-cart\u002F\" rel=\"nofollow ugc\">Marketplace Cart\u003C\u002Fa> – Offer Amazon like cart\u002Fcheckout experience for your customers.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002F1teamsoftware.com\u002Fproduct\u002Fwoocommerce-package-orders\u002F\" rel=\"nofollow ugc\">Package Orders\u003C\u002Fa> – Automatically create separate orders for items shipped from different locations.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002F1teamsoftware.com\u002Fproduct\u002Fwoocommerce-product-categories-menu\u002F\" rel=\"nofollow ugc\">Product Categories Menu\u003C\u002Fa> – Automatically add entire structure of product categories to any menu.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002F1teamsoftware.com\u002Fproduct\u002Fwoocommerce-sticky-product-bar-pro\u002F\" rel=\"nofollow ugc\">Sticky Product Bar PRO\u003C\u002Fa> – Adds a number of amazing features to a a highly configurable sticky product bar.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>FREE PLUGINS\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002F1teamsoftware.com\u002Fproduct\u002Fwoocommerce-shipping-packages\u002F\" rel=\"nofollow ugc\">Shipping Packages\u003C\u002Fa> – Split your cart into packages that can be shipped with different shipping methods.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002F1teamsoftware.com\u002Fproduct\u002Fwoocommerce-sticky-product-bar\u002F\" rel=\"nofollow ugc\">Sticky Product Bar\u003C\u002Fa> – Display sticky bar with product details, rating and add to cart button.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002F1teamsoftware.com\u002Fproduct\u002Fwoocommerce-shipping-packages\u002F\" rel=\"nofollow ugc\">Shipping Packages\u003C\u002Fa> – Split your cart into packages that can be shipped with different shipping methods.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002F1teamsoftware.com\u002Fproduct\u002Fwoocommerce-shipping-discount\u002F\" rel=\"nofollow ugc\">Shipping Discount\u003C\u002Fa> – Configurable shipping discount rules based on the amount spent for the items with a given shipping class.\u003C\u002Fli>\n\u003C\u002Ful>\n","Simple REST API Authentication plugin for WordPress - a powerful solution for integrating your website with external applications.",50,2241,"5.6","7.3",[124,21,125,126,127],"api","jwt","jwt-auth","rest-api","https:\u002F\u002F1teamsoftware.com\u002Fproduct\u002Fwordpress-simple-rest-api-authentication\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-simple-rest-api-authentication.zip","2026-03-15T10:48:56.248Z",{"attackSurface":132,"codeSignals":250,"taintFlows":271,"riskAssessment":320,"analyzedAt":325},{"hooks":133,"ajaxHandlers":244,"restRoutes":245,"shortcodes":246,"cronEvents":247,"entryPointCount":28,"unprotectedCount":28},[134,139,143,147,151,156,159,162,164,168,172,176,181,185,188,191,196,199,202,206,208,211,216,220,224,226,229,232,236,238,241],{"type":135,"name":136,"callback":136,"file":137,"line":138},"action","plugins_loaded","incs\\class-module-author-base.php",35,{"type":135,"name":140,"callback":141,"file":137,"line":142},"init","set_author_base",47,{"type":135,"name":144,"callback":145,"file":137,"line":146},"admin_init","echo_author_base_field",48,{"type":135,"name":148,"callback":149,"file":137,"line":150},"load-options-permalink.php","save_author_base",49,{"type":135,"name":152,"callback":153,"priority":47,"file":154,"line":155},"login_init","basic_auth","incs\\class-module-basic-auth.php",39,{"type":135,"name":152,"callback":157,"priority":47,"file":158,"line":155},"digest_auth","incs\\class-module-digest-auth.php",{"type":135,"name":152,"callback":152,"priority":28,"file":160,"line":161},"incs\\class-module-email-login.php",42,{"type":135,"name":163,"callback":163,"file":160,"line":146},"login_enqueue_scripts",{"type":165,"name":166,"callback":167,"priority":102,"file":160,"line":119},"filter","authenticate","allow_email_login",{"type":165,"name":169,"callback":170,"priority":102,"file":160,"line":171},"gettext","changed_loginform_text",51,{"type":165,"name":173,"callback":174,"file":160,"line":175},"wp_login_errors","override_incorrect_password",52,{"type":165,"name":177,"callback":178,"file":179,"line":180},"body_class","remove_body_class","incs\\class-module-etc.php",54,{"type":135,"name":182,"callback":183,"file":179,"line":184},"xmlrpc_enabled","__return_false",60,{"type":165,"name":186,"callback":186,"file":179,"line":187},"xmlrpc_methods",68,{"type":135,"name":144,"callback":189,"file":179,"line":190},"closure",73,{"type":165,"name":192,"callback":193,"priority":194,"file":179,"line":195},"auto_update_plugin","__return_true",99999,86,{"type":165,"name":197,"callback":193,"priority":194,"file":179,"line":198},"auto_update_theme",92,{"type":135,"name":136,"callback":136,"file":200,"line":201},"incs\\class-module-ip-limitation.php",34,{"type":135,"name":203,"callback":203,"priority":204,"file":200,"line":205},"admin_print_footer_scripts",21,45,{"type":135,"name":152,"callback":207,"priority":28,"file":200,"line":142},"ip_limitation",{"type":135,"name":209,"callback":210,"priority":28,"file":200,"line":146},"pre_option_enable_xmlrpc","ip_limitation_xmlrpc",{"type":135,"name":212,"callback":213,"file":214,"line":215},"vases_http_auth_send_mail","send_mail_processing","incs\\class-module-send-mail.php",23,{"type":135,"name":217,"callback":218,"file":214,"line":219},"user_register","send_mail_user_register",24,{"type":135,"name":221,"callback":221,"file":222,"line":223},"admin_menu","incs\\class-module-settings-api.php",28,{"type":135,"name":144,"callback":144,"file":222,"line":225},29,{"type":135,"name":227,"callback":228,"file":222,"line":35},"update_option_vases_settings","option_vases_settings",{"type":135,"name":230,"callback":228,"file":222,"line":231},"add_option_vases_settings",31,{"type":135,"name":233,"callback":234,"file":222,"line":235},"show_user_profile","user_profile_fields",33,{"type":135,"name":237,"callback":234,"file":222,"line":201},"edit_user_profile",{"type":135,"name":239,"callback":240,"priority":11,"file":222,"line":138},"user_profile_update_errors","user_profile_update",{"type":135,"name":136,"callback":136,"file":242,"line":243},"va-simple-enhanced-security.php",97,[],[],[],[248],{"hook":212,"callback":212,"file":214,"line":249},89,{"dangerousFunctions":251,"sqlUsage":252,"outputEscaping":254,"fileOperations":268,"externalRequests":28,"nonceChecks":47,"capabilityChecks":269,"bundledLibraries":270},[],{"prepared":28,"raw":28,"locations":253},[],{"escaped":255,"rawEcho":83,"locations":256},43,[257,260,262,264,266],{"file":222,"line":258,"context":259},345,"raw output",{"file":222,"line":261,"context":259},347,{"file":222,"line":263,"context":259},351,{"file":222,"line":265,"context":259},357,{"file":222,"line":267,"context":259},358,3,8,[],[272,290,304,312],{"entryPoint":273,"graph":274,"unsanitizedCount":47,"severity":289},"render_ip_limitation (incs\\class-module-settings-api.php:329)",{"nodes":275,"edges":286},[276,281],{"id":277,"type":278,"label":279,"file":222,"line":280},"n0","source","$_SERVER",332,{"id":282,"type":283,"label":284,"file":222,"line":265,"wp_function":285},"n1","sink","echo() [XSS]","echo",[287],{"from":277,"to":282,"sanitized":288},false,"medium",{"entryPoint":291,"graph":292,"unsanitizedCount":28,"severity":303},"save_author_base (incs\\class-module-author-base.php:82)",{"nodes":293,"edges":300},[294,297],{"id":277,"type":278,"label":295,"file":137,"line":296},"$_POST",91,{"id":282,"type":283,"label":298,"file":137,"line":198,"wp_function":299},"update_option() [Settings Manipulation]","update_option",[301],{"from":277,"to":282,"sanitized":302},true,"low",{"entryPoint":305,"graph":306,"unsanitizedCount":28,"severity":303},"\u003Cclass-module-author-base> (incs\\class-module-author-base.php:0)",{"nodes":307,"edges":310},[308,309],{"id":277,"type":278,"label":295,"file":137,"line":296},{"id":282,"type":283,"label":298,"file":137,"line":198,"wp_function":299},[311],{"from":277,"to":282,"sanitized":302},{"entryPoint":313,"graph":314,"unsanitizedCount":28,"severity":303},"\u003Cclass-module-settings-api> (incs\\class-module-settings-api.php:0)",{"nodes":315,"edges":318},[316,317],{"id":277,"type":278,"label":279,"file":222,"line":280},{"id":282,"type":283,"label":284,"file":222,"line":265,"wp_function":285},[319],{"from":277,"to":282,"sanitized":302},{"summary":321,"deductions":322},"The 'va-simple-enhanced-security' plugin version 0.4.6 demonstrates a generally strong security posture, with no known vulnerabilities or CVEs recorded. The static analysis reveals robust adherence to good practices, including 100% of SQL queries using prepared statements and a high percentage (90%) of output properly escaped. The presence of nonce and capability checks further strengthens its defense against common attack vectors.  However, the analysis does flag one flow with an unsanitized path, which, while not classified as critical or high severity in the taint analysis, warrants attention as a potential avenue for unexpected behavior or information leakage if exploited in conjunction with other factors.  The plugin also interacts with the file system, though the nature and security of these operations are not detailed.",[323],{"reason":324,"points":269},"Flow with unsanitized path","2026-03-17T00:56:10.695Z",{"wat":327,"direct":334},{"assetPaths":328,"generatorPatterns":330,"scriptPaths":331,"versionParams":332},[329],"\u002Fwp-content\u002Fplugins\u002Fva-simple-enhanced-security\u002Fassets\u002Fcss\u002Fvases-login.css",[],[],[333],"va-simple-enhanced-security\u002Fassets\u002Fcss\u002Fvases-login.css?ver=",{"cssClasses":335,"htmlComments":337,"htmlAttributes":338,"restEndpoints":340,"jsGlobals":341,"shortcodeOutput":343},[336],"vases-login-container",[],[339],"data-vases-login",[],[342],"VASES_AJAX_URL",[]]